Support

Use the hazard register

manageradmin Last updated 26 April 2026

The hazard register is the running list of all the hazards your organisation has identified, what controls are in place, and who owns them. It’s central to your risk assessments and is a useful living document on its own.

Where the register lives

Hazards are recorded as part of risk assessment plans. Each plan has its own hazard register, but the platform aggregates hazards across plans so you can see the full picture in one place.

Add a hazard

Hazards are normally added inside a risk assessment (general, sexual harassment prevention, or psychosocial). Open the relevant plan and add hazards from there. The form for each hazard collects:

  • Description. What the hazard is, in plain language.
  • Category. Short tag to group similar hazards.
  • Likelihood. 1 (rare) to 5 (almost certain).
  • Consequence. 1 (insignificant) to 5 (catastrophic).
  • Risk rating. Auto-calculated from Likelihood × Consequence.
  • Existing controls. What’s already in place.
  • Additional controls. What more needs to happen.
  • Responsible person. Who owns the additional controls.
  • Target date. When the additional controls should be done by.
  • Review date. When the hazard should next be reviewed.

Risk rating bands

The platform colour-codes risk ratings:

  • Critical (15-25). Highest priority. Stop, address, or escalate.
  • High (8-14). Significant risk. Plan additional controls promptly.
  • Medium (4-7). Manage routinely.
  • Low (1-3). Monitor.

Your existing controls reduce the residual risk. If a hazard rates Critical with your current controls, that’s a flag to act, not just to record.

Track and update

Hazards persist on the register even when their parent plan is finalised. You can:

  • Sort. By risk rating to see your highest-risk items first.
  • Filter. By status (open / closed) or category.
  • Update. Change likelihood/consequence as your controls take effect. The risk rating recalculates automatically.
  • Close. Mark a hazard as closed when it’s been eliminated or the residual risk is acceptable.

Linking to incidents

If an incident occurs that matches a hazard already on the register, that tells you the existing controls weren’t enough. Update the hazard: revise the likelihood and consequence in light of the incident, add new controls, and reset the review date.

If an incident reveals a hazard that wasn’t on the register, add it. The register is meant to grow as you learn.

Reviews

Each hazard has its own review date, which the compliance calendar surfaces when due. Use the review to confirm:

  1. The hazard still exists.
  2. The existing controls are still in place and effective.
  3. Likelihood and consequence are still correct.
  4. The responsible person is still the right person.
  5. Additional controls have been completed (or rescheduled with a reason).

Documenting reviews

The platform doesn’t currently keep a separate review log per hazard. Treat each review by updating the hazard fields with the new review date and noting any changes. Significant reviews (e.g. after an incident) are best captured as additional notes on the parent risk assessment plan or as a fresh plan version.